Restricting a matching rule to user

Similar Messages

• Auth.log - Rejected send message, 2 matched rules; type="method_call"

  Hi,
  i'm checking the /var/log/auth.log and I found out that there is this error message
  Jun 9 20:19:56 localhost polkitd(authority=local): Registered Authentication Agent for unix-session:/org/freedesktop/ConsoleKit/Session2 (system bus name :1.23 [/usr/bin/gnome-shell], object path /org/freedesktop/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8)
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  if think the problem is in /etc/dbus-1/system.conf
  <deny send_type="method_call"/>
  I'm tempted to change this to allow,  but I won't as long as I don't understand why this deny-rule is implemented.
  Last edited by miky76 (2012-06-09 20:41:06)

  That deny rule is the default. Things in /etc/dbus-1/system.d override it. There's a ConsoleKit.conf file in there that describes what interaction ConsoleKit actually allows.
  That said, ConsoleKit.conf also denies this access:
  <deny send_destination="org.freedesktop.ConsoleKit"
  send_interface="org.freedesktop.DBus.Properties" />
  I don't know why this is denied - most likely it's to prevent private data from being stolen from console-kit-daemon in this way. I don't see any such private data stored in properties on ConsoleKit, though:
  $ dbus-send --print-reply --system --dest=org.freedesktop.ConsoleKit /org/freedesktop/ConsoleKit/Session1 org.freedesktop.DBus.Introspectable.Introspect
  method return sender=:1.5 -> dest=:1.14 reply_serial=2
  string "<!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
  "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
  <node>
  <interface name="org.freedesktop.DBus.Introspectable">
  <method name="Introspect">
  <arg name="data" direction="out" type="s"/>
  </method>
  </interface>
  <interface name="org.freedesktop.DBus.Properties">
  <method name="Get">
  <arg name="interface" direction="in" type="s"/>
  <arg name="propname" direction="in" type="s"/>
  <arg name="value" direction="out" type="v"/>
  </method>
  <method name="Set">
  <arg name="interface" direction="in" type="s"/>
  <arg name="propname" direction="in" type="s"/>
  <arg name="value" direction="in" type="v"/>
  </method>
  <method name="GetAll">
  <arg name="interface" direction="in" type="s"/>
  <arg name="props" direction="out" type="a{sv}"/>
  </method>
  </interface>
  <interface name="org.freedesktop.ConsoleKit.Session">
  <method name="SetIdleHint">
  <arg name="idle_hint" type="b" direction="in"/>
  </method>
  <method name="GetIdleSinceHint">
  <arg name="iso8601_datetime" type="s" direction="out"/>
  </method>
  <method name="GetIdleHint">
  <arg name="idle_hint" type="b" direction="out"/>
  </method>
  <method name="Unlock">
  </method>
  <method name="Lock">
  </method>
  <method name="Activate">
  </method>
  <method name="GetCreationTime">
  <arg name="iso8601_datetime" type="s" direction="out"/>
  </method>
  <method name="IsLocal">
  <arg name="local" type="b" direction="out"/>
  </method>
  <method name="IsActive">
  <arg name="active" type="b" direction="out"/>
  </method>
  <method name="GetLoginSessionId">
  <arg name="login_session_id" type="s" direction="out"/>
  </method>
  <method name="GetRemoteHostName">
  <arg name="remote_host_name" type="s" direction="out"/>
  </method>
  <method name="GetDisplayDevice">
  <arg name="display_device" type="s" direction="out"/>
  </method>
  <method name="GetX11DisplayDevice">
  <arg name="x11_display_device" type="s" direction="out"/>
  </method>
  <method name="GetX11Display">
  <arg name="display" type="s" direction="out"/>
  </method>
  <method name="GetUnixUser">
  <arg name="uid" type="u" direction="out"/>
  </method>
  <method name="GetUser">
  <arg name="uid" type="u" direction="out"/>
  </method>
  <method name="GetSessionType">
  <arg name="type" type="s" direction="out"/>
  </method>
  <method name="GetSeatId">
  <arg name="sid" type="o" direction="out"/>
  </method>
  <method name="GetId">
  <arg name="ssid" type="o" direction="out"/>
  </method>
  <signal name="Unlock">
  </signal>
  <signal name="Lock">
  </signal>
  <signal name="IdleHintChanged">
  <arg type="b"/>
  </signal>
  <signal name="ActiveChanged">
  <arg type="b"/>
  </signal>
  <property name="idle-hint" type="b" access="readwrite"/>
  <property name="is-local" type="b" access="readwrite"/>
  <property name="active" type="b" access="readwrite"/>
  <property name="x11-display-device" type="s" access="readwrite"/>
  <property name="x11-display" type="s" access="readwrite"/>
  <property name="display-device" type="s" access="readwrite"/>
  <property name="remote-host-name" type="s" access="readwrite"/>
  <property name="session-type" type="s" access="readwrite"/>
  <property name="user" type="u" access="readwrite"/>
  <property name="unix-user" type="u" access="readwrite"/>
  </interface>
  </node>
  Note those properties at the end of that list, which are the same things you can learn by running ck-list-session.
  If you want to change the deny to allow, you may as well do it in the ConsoleKit.conf line, so it's specific to this usage, rather than allowing any method call in the world called through dbus.
  FWIW, I can reproduce this same error, trying to do it "by hand", though I don't use GNOME, as you do:
  $ dbus-send --print-reply --system --type=method_call --dest=org.freedesktop.ConsoleKit /org/freedesktop/ConsoleKit/Session1 org.freedesktop.DBus.Properties.GetAll string:org.freedesktop.ConsoleKit.Session
  Error org.freedesktop.DBus.Error.AccessDenied: Rejected send message, 2 matched rules; type="method_call", sender=":1.17" (uid=1000 pid=13892 comm="dbus-send --print-reply --system --type=method_cal") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination="org.freedesktop.ConsoleKit" (uid=0 pid=751 comm="/usr/sbin/console-kit-daemon --no-daemon ")

• Cisco ISE - What does "Multiple Matched Rule Applies" mean?

  Hi,
  In Cisco ISE authroiztion policy configuration, what does the option "multiple matched rule applies" mean? I can understand the "first matched rule", but in "multiple matched rule" how is the "permissions picked if multiple rules match? Or, what is the logic involved in picking up the permissions, if multiple rules are matched in authorization policy.
  No where in cisco document I see any explaination for this.
  Would appreciate if any one can point me to  a document or explain me the login in selecting the persmissions if multiple rules are matched. Also, what would the use-case for this?
  Thanks and Regards,
  Mohan

  I agree with tarik & also this might be helpful for you:
  An authorization policy can  consist of a single rule or a set of rules that are user-defined. These  rules act to create a specific policy. For example, a standard policy  can include the rule name using an If-Then convention that links a value  entered for identity groups with specific condition(s) or attributes to  produce a specific set of permissions that create a unique  authorization profile. There are two authorization policy options you  can set:
  •First Matched Rules Apply
  •Multiple Matched Rule Applies
  These two options direct Cisco ISE  to use either the first matched or the multiple matched rule type  listed in the standard policy table when it matches the user's set of  permissions. These are the two types of authorization policies that you  can configure:
  •Standard
  •Exception
  Standard policies are policies  created to remain in effect for long periods of time, to apply to a  larger group of users or devices or groups, and allow access to specific  or all network endpoints. Standard policies are intended to be stable  and apply to a large groups of users, devices, and groups that share a  common set of privileges.
  Standard policies can be used as  templates in which you modify the original values to serve the needs of a  specific identity group, using specific conditions or permissions to  create another type of standard policy to meet the needs of new  divisions, or groups of users, devices, or groups in your network.
  By contrast, exception policies  are appropriately named because this type of policy acts as an exception  to the standard policies. Exception polices are intended for  authorizing limited access that is based on a variety of factors  (short-term policy duration, specific types of network devices, network  endpoints or groups, or the need to meet special conditions or  permissions or an immediate requirement).
  Exception policies are created to  meet an immediate or short-term need such as authorizing a limited  number of users, devices, or groups to access network resources. An  exception policy lets you create a specific set of customized values for  an identity group, condition, or permission that are tailored for one  user or a subset of users. This allows you to create different or  customized policies to meet your corporate, group, or network needs.
  http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_authz_polprfls.html

• OID: Matching rule where clause is null

  Hi All,
  I've installed OIM 11.1.1.5.0 BP02 with OID connector 9.0.4.14. I am able to provision to OID and to run the "OID User Target Recon" scheduled task successfully. However, when I run the "OID User Trusted Recon" scheduled task, I get the error below. Does anyone know why this error is occurring and how to solve it?
  [2012-05-15T22:55:11.791+02:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] Generic Information: ignoreEvent Input Data : {Telephone=, Organization=Xellerate Users, Location=, Preferred Language=, Middle Name=, Xellerate Type=End-User Administrator, Title=, User ID=COETZETH, Manager ID=, Container DN=cn=Users, ssouid=, Status=Active, orclGuid=BA2694539E2C432F852460915924D067, [email protected], modifytimestamp=20120515192927z, Common Name=COETZETH, Role=Consultant, Server Name=OID IT Resource, TimeZone=, Department=, Last Name=Coetzee, First Name=Theuns} dateFormat : yyyy/MM/dd HH:mm:ss z
  [2012-05-15T22:55:11.792+02:00] [oim_server1] [NOTIFICATION] [IAM-5010000] [oracle.iam.reconciliation.impl.config] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] Generic Information: Xellerate User from cache
  [2012-05-15T22:55:11.792+02:00] [oim_server1] [ERROR] [IAM-5010000] [oracle.iam.reconciliation.impl] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] Generic Information: {0}[[
  oracle.iam.reconciliation.exception.ReconciliationException: Matching rule where clause is null
  at oracle.iam.reconciliation.impl.ReconOperationsServiceImpl.getMatchingRule(ReconOperationsServiceImpl.java:490)
  at oracle.iam.reconciliation.impl.ReconOperationsServiceImpl.ignoreEvent(ReconOperationsServiceImpl.java:390)
  at oracle.iam.reconciliation.impl.ReconOperationsServiceImpl.ignoreEvent(ReconOperationsServiceImpl.java:355)
  at Thor.API.Operations.tcReconciliationOperationsIntfEJB.ignoreEventx(Unknown Source)
  at sun.reflect.GeneratedMethodAccessor1849.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
  at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
  at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  at $Proxy372.ignoreEventx(Unknown Source)
  at Thor.API.Operations.tcReconciliationOperationsIntfEJB_troehf_tcReconciliationOperationsIntfRemoteImpl.__WL_invoke(Unknown Source)
  at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
  at Thor.API.Operations.tcReconciliationOperationsIntfEJB_troehf_tcReconciliationOperationsIntfRemoteImpl.ignoreEventx(Unknown Source)
  at sun.reflect.GeneratedMethodAccessor1848.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
  at $Proxy169.ignoreEventx(Unknown Source)
  at sun.reflect.GeneratedMethodAccessor1847.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
  at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
  at $Proxy356.ignoreEventx(Unknown Source)
  at Thor.API.Operations.tcReconciliationOperationsIntfDelegate.ignoreEvent(Unknown Source)
  at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliation.reconcileUser(Unknown Source)
  at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliation.processRecord(Unknown Source)
  at com.thortech.xl.integration.OID.util.tcUtilLDAPOperations.pagingReconSearch(Unknown Source)
  at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliation.doReconSearch(Unknown Source)
  at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliation.processChange(Unknown Source)
  at com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliation.execute(Unknown Source)
  at com.thortech.xl.scheduler.tasks.SchedulerBaseTask.execute(SchedulerBaseTask.java:384)
  at oracle.iam.scheduler.vo.TaskSupport.executeJob(TaskSupport.java:145)
  at sun.reflect.GeneratedMethodAccessor565.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at oracle.iam.scheduler.impl.quartz.QuartzJob.execute(QuartzJob.java:196)
  at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
  at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:529)
  [2012-05-15T22:55:11.794+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] ====================================================
  [2012-05-15T22:55:11.794+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] com.thortech.xl.integration.OID.schedule.tasks.tcTskOIDUserReconciliationException when reconciling COETZETH
  [2012-05-15T22:55:11.795+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] ====================================================[[
  [2012-05-15T22:55:11.795+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] ====================================================
  [2012-05-15T22:55:11.795+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] Exception in OID:tcTskOIDUserReconciliation:reconcileUser() oracle.iam.reconciliation.exception.ReconciliationException: Matching rule where clause is null
  [2012-05-15T22:55:11.796+02:00] [oim_server1] [ERROR] [] [XL_INTG.OID] [tid: OIMQuartzScheduler_Worker-4] [userId: oiminternal] [ecid: 0000JTHLa8WBp20LVyCCyc1FgcIi000002,0] [APP: oim#11.1.1.3.0] ====================================================

  user10233157 wrote:
  Could anyone please explain to me how reconciliation and the various design console forms in OIM fit together? I am struggling to understand how resource objects, reconciliation fields, reconciliation action rules, reconciliation field mappings and reconcilaition rules all fit together... As for my original question, I have installed the OID connector and not made any modifications. I expected to see users created in OIM when running the trusted recon task.... When I run the target recon task existing users are associated with accounts in OID (as expected).Most times with OIM, following the documentation will not work. It requires knowledge of the product to find the missed steps, or missed pieces. You really need to get a baseline skill set with the product either through the Oracle By Examples or taking an Oracle University course. You are basically asking the community for all the answers but you haven't done your part.
  -Kevin

• OIM: Progammatically Reapplying Matching Rules

  Hi!
  Is there a way to emulate pressing 'Reapply Matching Rules' button (which is in the 'OIM Design Console' -> User Management -> Reconciliation Manager).
  I mean, is there OIM API for that purpose? I've tried tcReconciliationOperations processReconciliationEvent(long rceKey) method, but it only allows reapply rules, if reconciliation event is in 'Event Received' status.
  I want to process events that are in 'No match found' status

  Hi Laura,
  Do you see the resubmit recon task in the task scheduler.
  This should resolve the specified issue. It must exist in 9.1
  Thanks,
  Manasa

• Customize matching rule in lockbox

  Hi,
  Did anyone customised the matching rules in lockbox using the packaged procedure ARP_LOCKBOX_HOOK.CURSOR_FOR_MATCHING_RULE.
  I need to customize the matching rule so that it matches by invoice number and discount amount passed in the data file.
  Thanks in advance.
  Madhu

  what u want to do for matching rule.
  Refer to AR user guide pages 7-126 ,there is process for defining Custom Matching Rules.
  Custom Matching Rules provides a stub program (arp_lockbox_hook.cursor_for_matching_rule) that you can code to implement your unique matching criteria.
  This program is then called as part of the normal lockbox process and is used instead of Auto-Cash rules to assign Transactions to receipts.

• Any report to check vacation rule for users?

  any report to check vacation rule for users?

  Hello Anand,
  there is no report but you may use the production order info system with list "components" and create a layout contaning the issued quantity and/or the final issue indicator. With a correct sorting, the list should show all orders with non-issued components at the top.
  Regards, Andreas

• How to restrict the department to not user other departments' equipment?

  Dear SAPIENTS,
  How to restrict the department to not user other departments' equipment? If suppose any one creating order for equipment having different authorization group then system should not allow me to do this.
  Regards,
  Kaushal Rai

  Kaushal Rai,
  Use Authorization group for technical objects, create authorization gruops in IMG and assign the same to the Equipment master and block the other department with the same authorization group. For ristricting the authorization group to other departments after creating and assigning it to the equipment seek help from your BASIS team.
  goto the below path for cerating the Authorization group:
  IMG - PMCS - Master data in PMCS - Technical Objects - Define Authorization groups:
  Here you define the authorization groups, after completion of this step go to the Equipment master in General Data tab page there is a feild Authourization Group, mention the respective authorization group and provide this Authorization gruop value to the respective user in the user role with the help of BASIS Team.
  Regards,
  Praveen.

• List of Calculated KFs and Restricted KFs created by end users

  Hi all,
  Is there one way that I can run a list of all Calcuated KFs and Restricted KFs created by end users in Production. We would like to DELETE all CKFs and RKFs created by end users that are not following the naming convention. So we are looking for a tool to list all CKFs and RKFs created by end users. Can you help?
  Thank you
  J.

  Hi
  Table RSZELTDIR will give you the CKF and RKF but will not tell who has created. The user entry you will find in table RSZCOMPDIR.
  So first go to second table display result by restricting to user name for which you want to delete the CKF and RKF. Select all the component ID and Put in first table and restrict the selection to CKF and RKF .
  thanks
  Tripple k

• Restrict program access ( only three user at a time)

  Hi
  I want to restrict the program only two users at a time ( with out using authorization object ).
  Thanks & Regards,
  K.Gunasekar.

  Just an idea:
  create a table with one column to store the userid. Each time the program ist started, you execute a SELECT COUNT( * ) on that table and EXIT from your program as soon as the table contains more that 2 entries. In case the table does not contain more than two entries, you can proceed after adding the SY-UNAME to that table. At the end of the prgram you have to delete SY-UNAME from that table.

• How to set matching rules in FEBAN

  Hello,
  I'm configuring the electronic bank statement to process the items using the transaction FB05 (post with clearing). By default the only matching rule is the amount in company currency (i see it posting my items in foreground). How can I add different rules for the matching, for example the value date?
  Thank you

  Hello
  I don't quite understand. There are many option in the additional selections right. So what do you mean when you say you just have only one option.
  FEBAN usually turns you into Customer Clearing mode. You can choose the customer and the open item and then process it and thereby clear the open item.
  So can you please clarify.
  Rgds

• To migrate match rules from one OEDQ's instance to other.

  Hello,
            We have configured match rules as per the requirement in one instance of OEDQ and now we need to transfer those match rules to the other instace of OEDQ. is there any specific way of transferring those rules to other instance of OEDQ? Kindly please guide.
  Thank you.
  Regards,
  Zankrut.

  The simplest way is to package up the project to file and import it into the other system. Best not to package lower level objects such as processes unless you are sure you have not altered dependent objects like reference data or jobs.
  Note that if you have >1 server at the same version, Director can connect to multiple servers and drag and drop configuration between them (provided you have appropriate rights).
  For production servers, you may want to consider using Autorun to load and run a baselined configuration at startup, and/or the use of the Subversion integration for change control.

• How to restrict acess to a single user for a proxy service in OSB

  how to restrict acess to a single user for a proxy service in OSB

  A.     Go to Proxy Service and Click on the Security tab
  B.     Click on Transport Acess Control Policies to Edit.
  C.     Click on Add Conditions to Restrict the users.
  D.     In the Predicate List Select the User Category
  E.     Give the User Name to which you want to give access.

• Implementing a custom matching rule for AR lockbox

  I need to Implement a custom matching rule for AR lockbox.
  Client has a requirement like to match with pack slip.
  Any one have the coding for this?
  Kindly help me to solve this.

  I need to Implement a custom matching rule for AR lockbox.
  Client has a requirement like to match with pack slip.
  Any one have the coding for this?
  Kindly help me to solve this.

• R12 Restrict Parallel Concurrent Requests Per User to a Limit.

  Hi everyone,
  Is it possible to restrict parallel concurrent requests per user to a limit.
  e.g. UserA sending concurrent requests to submit 15 heavy reports one after another. After 2 minutes he feels free. Now 15 reports running in parallel are heavy enough to take system's performance down. Is there a way to restricting parallal reports by a single user to 5.
  Waitning........
  Regrads,
  M. Farooq Khan.

  Hi,
  Please check the profile optiion
  Concurrent:Active Request Limit
  Thanks,